Untriaged
Permalink
CVE-2023-39328
5.5 MEDIUM
- CVSS version: 3.1
- Attack vector (AV): LOCAL
- Attack complexity (AC): LOW
- Privileges required (PR): NONE
- User interaction (UI): REQUIRED
- Scope (S): UNCHANGED
- Confidentiality impact (C): NONE
- Integrity impact (I): NONE
- Availability impact (A): HIGH
Openjpeg: denail of service via crafted image file
A vulnerability was found in OpenJPEG similar to CVE-2019-6988. This flaw allows an attacker to bypass existing protections and cause an application crash through a maliciously crafted file.
References
- https://access.redhat.com/security/cve/CVE-2023-39328 x_refsource_REDHAT vdb-entry
- RHBZ#2219236 issue-tracking x_refsource_REDHAT
- https://access.redhat.com/security/cve/CVE-2023-39328 x_refsource_REDHAT vdb-entry
- RHBZ#2219236 issue-tracking x_refsource_REDHAT
- https://access.redhat.com/security/cve/CVE-2023-39328 x_refsource_REDHAT vdb-entry
- RHBZ#2219236 issue-tracking x_refsource_REDHAT
- https://access.redhat.com/security/cve/CVE-2023-39328 x_refsource_REDHAT vdb-entry x_transferred
- RHBZ#2219236 issue-tracking x_refsource_REDHAT x_transferred
- https://access.redhat.com/security/cve/CVE-2023-39328 x_refsource_REDHAT vdb-entry
- RHBZ#2219236 issue-tracking x_refsource_REDHAT
- https://access.redhat.com/security/cve/CVE-2023-39328 x_refsource_REDHAT vdb-entry x_transferred
- RHBZ#2219236 issue-tracking x_refsource_REDHAT x_transferred
- https://access.redhat.com/security/cve/CVE-2023-39328 x_refsource_REDHAT vdb-entry
- RHBZ#2219236 issue-tracking x_refsource_REDHAT
- https://access.redhat.com/security/cve/CVE-2023-39328 x_refsource_REDHAT vdb-entry x_transferred
- RHBZ#2219236 issue-tracking x_refsource_REDHAT x_transferred
- https://access.redhat.com/security/cve/CVE-2023-39328 x_refsource_REDHAT vdb-entry
- RHBZ#2219236 issue-tracking x_refsource_REDHAT
- RHBZ#2219236 issue-tracking x_refsource_REDHAT x_transferred
- https://access.redhat.com/security/cve/CVE-2023-39328 x_refsource_REDHAT vdb-entry x_transferred
- https://access.redhat.com/security/cve/CVE-2023-39328 x_refsource_REDHAT vdb-entry
- RHBZ#2219236 issue-tracking x_refsource_REDHAT
- https://access.redhat.com/security/cve/CVE-2023-39328 x_refsource_REDHAT vdb-entry x_transferred
- RHBZ#2219236 issue-tracking x_refsource_REDHAT x_transferred
- https://access.redhat.com/security/cve/CVE-2023-39328 x_refsource_REDHAT vdb-entry
- RHBZ#2219236 issue-tracking x_refsource_REDHAT
- https://access.redhat.com/security/cve/CVE-2023-39328 x_refsource_REDHAT vdb-entry x_transferred
- RHBZ#2219236 issue-tracking x_refsource_REDHAT x_transferred
- https://access.redhat.com/security/cve/CVE-2023-39328 x_refsource_REDHAT vdb-entry
- RHBZ#2219236 issue-tracking x_refsource_REDHAT
- https://access.redhat.com/security/cve/CVE-2023-39328 x_refsource_REDHAT vdb-entry x_transferred
- RHBZ#2219236 issue-tracking x_refsource_REDHAT x_transferred
- https://access.redhat.com/security/cve/CVE-2023-39328 x_refsource_REDHAT vdb-entry
- RHBZ#2219236 issue-tracking x_refsource_REDHAT
- https://access.redhat.com/security/cve/CVE-2023-39328 x_refsource_REDHAT vdb-entry x_transferred
- RHBZ#2219236 issue-tracking x_refsource_REDHAT x_transferred
Affected products
openjpeg
- ==2.5.0
openjpeg2
gimp:flatpak/openjpeg2
inkscape:flatpak/openjpeg2
libreoffice:flatpak/openjpeg2
Matching in nixpkgs
pkgs.openjpeg
Open-source JPEG 2000 codec written in C language
-
nixos-unstable -
- nixpkgs-unstable 2.5.2
pkgs.python312Packages.pylibjpeg-openjpeg
J2K and JP2 plugin for pylibjpeg
-
nixos-unstable -
- nixpkgs-unstable 2.5.0
pkgs.python313Packages.pylibjpeg-openjpeg
J2K and JP2 plugin for pylibjpeg
-
nixos-unstable -
- nixpkgs-unstable 2.5.0
Package maintainers
-
@codyopel Cody Opel <codyopel@gmail.com>
-
@bcdarwin Ben Darwin <bcdarwin@gmail.com>